Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-15535 |
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
|
nicbarker clay clay.h Clay__MeasureTextCached null poi… |
nicbarker |
clay |
2026-01-18T07:32:05.937Z | 2026-02-23T08:37:09.165Z |
| CVE-2025-15534 |
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
|
raysan5 raylib rtext.c LoadFontData integer overflow |
raysan5 |
raylib |
2026-01-18T06:32:06.449Z | 2026-02-23T08:36:56.942Z |
| CVE-2025-15533 |
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
|
raysan5 raylib rtext.c GenImageFontAtlas heap-based overflow |
raysan5 |
raylib |
2026-01-18T05:02:08.672Z | 2026-02-23T08:36:44.598Z |
| CVE-2026-1112 |
5.3 (4.0)
5.4 (3.1)
5.4 (3.0)
|
Sanluan PublicCMS Trade Address Deletion Endpoint Trad… |
Sanluan |
PublicCMS |
2026-01-18T06:02:06.704Z | 2026-02-23T08:36:29.816Z |
| CVE-2026-1111 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
Sanluan PublicCMS Task Template Management TaskTemplat… |
Sanluan |
PublicCMS |
2026-01-18T05:32:05.496Z | 2026-02-23T08:36:16.524Z |
| CVE-2023-0383 |
7.5 (3.1)
|
Uncontrolled Resource Consuption in M-Files Server |
M-Files |
M-Files Server |
2023-04-20T08:00:31.910Z | 2026-02-23T08:36:12.763Z |
| CVE-2026-1110 |
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
|
cijliu librtsp rtsp_parse_method buffer overflow |
cijliu |
librtsp |
2026-01-18T04:32:05.333Z | 2026-02-23T08:36:03.480Z |
| CVE-2026-1109 |
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
|
cijliu librtsp rtsp_parse_request buffer overflow |
cijliu |
librtsp |
2026-01-18T03:02:06.182Z | 2026-02-23T08:35:50.506Z |
| CVE-2026-1108 |
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
|
cijliu librtsp rtsp_rely_dumps buffer overflow |
cijliu |
librtsp |
2026-01-18T01:32:06.797Z | 2026-02-23T08:35:36.751Z |
| CVE-2026-1107 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
EyouCMS Member Avatar Diyajax.php check_userinfo unres… |
n/a |
EyouCMS |
2026-01-18T00:32:06.306Z | 2026-02-23T08:35:22.852Z |
| CVE-2026-1106 |
5.3 (4.0)
5.4 (3.1)
5.4 (3.0)
|
Chamilo LMS Legal Consent SocialController.php deleteL… |
Chamilo |
LMS |
2026-01-18T00:02:09.172Z | 2026-02-23T08:35:10.532Z |
| CVE-2026-1105 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
EasyCMS UserAction.class.php sql injection |
n/a |
EasyCMS |
2026-01-17T23:32:05.684Z | 2026-02-23T08:34:54.085Z |
| CVE-2026-1066 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
kalcaddle kodbox Compression zip command injection |
kalcaddle |
kodbox |
2026-01-17T21:02:06.222Z | 2026-02-23T08:34:40.545Z |
| CVE-2026-1064 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
bastillion-io Bastillion System Management SystemKtrl.… |
bastillion-io |
Bastillion |
2026-01-17T20:32:05.575Z | 2026-02-23T08:34:26.430Z |
| CVE-2026-1063 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
bastillion-io Bastillion Public Key Management System … |
bastillion-io |
Bastillion |
2026-01-17T20:02:05.504Z | 2026-02-23T08:34:14.673Z |
| CVE-2026-1062 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
xiweicheng TMS HtmlUtil.java summary server-side reque… |
xiweicheng |
TMS |
2026-01-17T19:32:05.562Z | 2026-02-23T08:34:02.810Z |
| CVE-2023-0382 |
6.5 (3.1)
|
Uncontrolled Resource Consumption in M-Files Server |
M-Files |
M-Files Server |
2023-04-05T06:13:59.289Z | 2026-02-23T08:33:54.415Z |
| CVE-2026-1061 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
xiweicheng TMS FileController.java upload unrestricted… |
xiweicheng |
TMS |
2026-01-17T19:02:05.480Z | 2026-02-23T08:33:50.345Z |
| CVE-2026-1059 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
FeMiner wms chkuser.php sql injection |
FeMiner |
wms |
2026-01-17T18:32:06.697Z | 2026-02-23T08:33:38.585Z |
| CVE-2025-15531 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
Open5GS context.c sgwc_bearer_add assertion |
n/a |
Open5GS |
2026-01-17T16:02:07.934Z | 2026-02-23T08:32:32.440Z |
| CVE-2025-15530 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
Open5GS s11-handler.c assertion |
n/a |
Open5GS |
2026-01-17T11:02:06.505Z | 2026-02-23T08:32:20.140Z |
| CVE-2025-15529 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
Open5GS s5c-handler.c sgwc_s5c_handle_create_session_r… |
n/a |
Open5GS |
2026-01-16T22:02:10.930Z | 2026-02-23T08:32:06.621Z |
| CVE-2026-0852 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Online Music Site AdminUpdateUser.php sq… |
code-projects |
Online Music Site |
2026-01-12T00:02:06.128Z | 2026-02-23T08:31:40.492Z |
| CVE-2026-0851 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Online Music Site AdminAddUser.php sql i… |
code-projects |
Online Music Site |
2026-01-11T23:32:07.010Z | 2026-02-23T08:31:27.530Z |
| CVE-2026-0850 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
code-projects Intern Membership Management System dele… |
code-projects |
Intern Membership Management System |
2026-01-11T23:02:06.162Z | 2026-02-23T08:31:13.750Z |
| CVE-2025-15506 |
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
|
AcademySoftwareFoundation OpenColorIO FileRules.cpp Co… |
AcademySoftwareFoundation |
OpenColorIO |
2026-01-11T11:02:09.187Z | 2026-02-23T08:31:01.015Z |
| CVE-2026-0843 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
jiujiujia/victor123/wxw850227 jjjfood/jjjshop_food ind… |
jiujiujia |
jjjfood |
2026-01-11T09:02:05.907Z | 2026-02-23T08:30:43.138Z |
| CVE-2026-0842 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Flycatcher Toys smART Sketcher Bluetooth Low Energy mi… |
Flycatcher Toys |
smART Sketcher |
2026-01-11T08:02:06.221Z | 2026-02-23T08:30:28.781Z |
| CVE-2026-0841 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
UTT 进取 520W formPictureUrl strcpy buffer overflow |
UTT |
进取 520W |
2026-01-11T07:32:07.736Z | 2026-02-23T08:30:15.999Z |
| CVE-2026-0840 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
UTT 进取 520W formConfigNoticeConfig strcpy buffer overflow |
UTT |
进取 520W |
2026-01-11T06:32:06.734Z | 2026-02-23T08:30:04.197Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-54855 |
6.4 (3.1)
|
fabricators Ltd Vanilla OS 2 Core image v1.1.0 wa… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-13T15:56:52.691Z |
| CVE-2026-24667 |
5 (3.1)
|
Open eClass's Active Sessions Not Invalidated After Pa… |
gunet |
openeclass |
2026-02-03T16:59:32.119Z | 2026-02-04T16:51:49.025Z |
| CVE-2026-24668 |
6.5 (3.1)
|
Open eClass Broken Access Control Allows Students to A… |
gunet |
openeclass |
2026-02-03T16:59:48.362Z | 2026-02-04T16:51:43.187Z |
| CVE-2026-24669 |
7.8 (3.1)
|
Open eClass Insecure Password Reset Token Reuse Enable… |
gunet |
openeclass |
2026-02-03T17:00:38.847Z | 2026-02-04T16:51:37.677Z |
| CVE-2026-23740 |
0 (3.1)
|
Asterisk vulnerable to potential privilege escalation |
asterisk |
asterisk |
2026-02-06T16:43:41.330Z | 2026-02-06T19:11:55.655Z |
| CVE-2025-70963 |
7.6 (3.1)
|
Gophish <=0.12.1 is vulnerable to Incorrect Acces… |
n/a |
n/a |
2026-02-06T00:00:00.000Z | 2026-02-06T18:37:19.153Z |
| CVE-2026-24670 |
6.5 (3.1)
|
Open eClass Has Broken Access Control in Course Units … |
gunet |
openeclass |
2026-02-03T16:56:16.652Z | 2026-02-04T16:52:43.929Z |
| CVE-2026-24671 |
6.1 (3.1)
|
Open eClass is Vulnerable to Stored Cross-Site Scripti… |
gunet |
openeclass |
2026-02-03T16:56:26.219Z | 2026-02-04T16:52:35.918Z |
| CVE-2026-24672 |
7.3 (3.1)
|
Open eClass is Vulnerable to Stored Cross-Site Scripti… |
gunet |
openeclass |
2026-02-03T16:56:36.889Z | 2026-02-04T16:52:30.735Z |
| CVE-2025-13447 |
8.4 (3.1)
|
OS Command Injection Remote Code Execution Vulnerabili… |
Progress Software |
LoadMaster |
2026-01-13T14:31:56.911Z | 2026-02-26T15:04:45.811Z |
| CVE-2026-2057 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
SourceCodester Medical Center Portal Management System… |
SourceCodester |
Medical Center Portal Management System |
2026-02-06T15:32:07.036Z | 2026-02-23T09:25:50.990Z |
| CVE-2026-25950 |
N/A
|
Further research determined the issue is not a vulnerability. | N/A | N/A | 2026-02-10T17:33:58.091Z | |
| CVE-2025-6010 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-02-10T17:56:52.946Z | |
| CVE-2025-62392 |
6.5 (3.1)
|
SQL injection in Ivanti Endpoint Manager before v… |
Ivanti |
Endpoint Manager |
2025-10-13T21:10:15.318Z | 2026-02-10T17:03:59.025Z |
| CVE-2025-62391 |
6.5 (3.1)
|
SQL injection in Ivanti Endpoint Manager before v… |
Ivanti |
Endpoint Manager |
2025-10-13T21:12:22.188Z | 2026-02-10T17:07:35.039Z |
| CVE-2025-62390 |
6.5 (3.1)
|
SQL injection in Ivanti Endpoint Manager before v… |
Ivanti |
Endpoint Manager |
2025-10-13T21:10:53.982Z | 2026-02-10T17:03:03.801Z |
| CVE-2025-62389 |
6.5 (3.1)
|
SQL injection in Ivanti Endpoint Manager before v… |
Ivanti |
Endpoint Manager |
2025-10-13T21:11:18.043Z | 2026-02-10T17:04:40.319Z |
| CVE-2025-62388 |
6.5 (3.1)
|
SQL injection in Ivanti Endpoint Manager before v… |
Ivanti |
Endpoint Manager |
2025-10-13T21:11:34.823Z | 2026-02-10T17:05:16.161Z |
| CVE-2025-62387 |
6.5 (3.1)
|
SQL injection in Ivanti Endpoint Manager before v… |
Ivanti |
Endpoint Manager |
2025-10-13T21:11:52.712Z | 2026-02-10T17:06:13.734Z |
| CVE-2025-62386 |
6.5 (3.1)
|
SQL injection in Ivanti Endpoint Manager before v… |
Ivanti |
Endpoint Manager |
2025-10-13T21:12:52.222Z | 2026-02-10T17:08:56.495Z |
| CVE-2025-62385 |
6.5 (3.1)
|
SQL injection in Ivanti Endpoint Manager before v… |
Ivanti |
Endpoint Manager |
2025-10-13T21:12:08.724Z | 2026-02-10T17:06:52.469Z |
| CVE-2025-62384 |
6.5 (3.1)
|
SQL injection in Ivanti Endpoint Manager before v… |
Ivanti |
Endpoint Manager |
2025-10-13T21:13:05.017Z | 2026-02-10T17:09:32.081Z |
| CVE-2025-62383 |
6.5 (3.1)
|
SQL injection in Ivanti Endpoint Manager before v… |
Ivanti |
Endpoint Manager |
2025-10-13T21:12:38.655Z | 2026-02-10T17:08:17.427Z |
| CVE-2025-61550 |
5.4 (3.1)
|
Cross-Site Scripting (XSS) is present on the ctl0… |
n/a |
n/a |
2026-01-08T00:00:00.000Z | 2026-02-10T18:01:32.930Z |
| CVE-2025-61549 |
6.1 (3.1)
|
Cross-Site Scripting (XSS) is present on the Logi… |
n/a |
n/a |
2026-01-08T00:00:00.000Z | 2026-02-10T18:00:23.431Z |
| CVE-2025-61548 |
9.8 (3.1)
|
SQL Injection is present on the hfInventoryDistFo… |
n/a |
n/a |
2026-01-08T00:00:00.000Z | 2026-02-10T17:59:06.740Z |
| CVE-2025-61547 |
6.8 (3.1)
|
Cross-Site Request Forgery (CSRF) is present on a… |
n/a |
n/a |
2026-01-08T00:00:00.000Z | 2026-02-10T17:27:59.228Z |
| CVE-2025-61546 |
9.1 (3.1)
|
There is an issue on the /PSP/appNET/Store/CartV1… |
n/a |
n/a |
2026-01-08T00:00:00.000Z | 2026-02-11T15:46:53.367Z |
| CVE-2025-59282 |
7 (3.1)
|
Internet Information Services (IIS) Inbox COM Objects … |
Microsoft |
Windows 10 Version 1507 |
2025-10-14T17:00:48.096Z | 2026-02-26T17:47:15.216Z |
| CVE-2025-26466 |
5.9 (3.1)
|
Openssh: denial-of-service in openssh |
|
|
2025-02-28T21:25:28.861Z | 2026-02-10T17:13:57.386Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2024-54855 | fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH se… | 2026-01-13T16:15:54.730 | 2026-02-10T18:36:03.913 |
| fkie_cve-2026-24667 | The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. P… | 2026-02-03T18:16:19.917 | 2026-02-10T18:35:19.530 |
| fkie_cve-2026-24668 | The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. P… | 2026-02-03T18:16:21.610 | 2026-02-10T18:32:55.670 |
| fkie_cve-2026-24669 | The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. P… | 2026-02-03T18:16:21.820 | 2026-02-10T18:31:05.160 |
| fkie_cve-2026-23740 | Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-ce… | 2026-02-06T17:16:26.290 | 2026-02-10T18:25:39.730 |
| fkie_cve-2025-70963 | Gophish <=0.12.1 is vulnerable to Incorrect Access Control. The administrative dashboard exposes ea… | 2026-02-06T18:15:55.510 | 2026-02-10T18:23:11.493 |
| fkie_cve-2026-24670 | The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. P… | 2026-02-03T18:16:22.067 | 2026-02-10T18:22:04.237 |
| fkie_cve-2026-24671 | The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. P… | 2026-02-03T18:16:23.720 | 2026-02-10T18:21:25.530 |
| fkie_cve-2026-24672 | The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. P… | 2026-02-03T18:16:23.870 | 2026-02-10T18:20:55.313 |
| fkie_cve-2025-13447 | OS Command Injection Remote Code Execution Vulnerability in API in Progress LoadMaster allows an au… | 2026-01-13T15:15:58.060 | 2026-02-10T18:18:42.417 |
| fkie_cve-2026-2057 | A vulnerability was detected in SourceCodester Medical Center Portal Management System 1.0. This af… | 2026-02-06T16:16:15.070 | 2026-02-10T18:17:09.330 |
| fkie_cve-2026-25950 | Rejected reason: Further research determined the issue is not a vulnerability. | 2026-02-10T18:16:38.593 | 2026-02-10T18:16:38.593 |
| fkie_cve-2025-6010 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 2026-02-10T18:16:21.793 | 2026-02-10T18:16:21.793 |
| fkie_cve-2025-62392 | SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated atta… | 2025-10-13T22:15:35.763 | 2026-02-10T18:16:21.540 |
| fkie_cve-2025-62391 | SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated atta… | 2025-10-13T22:15:35.590 | 2026-02-10T18:16:21.430 |
| fkie_cve-2025-62390 | SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated atta… | 2025-10-13T22:15:35.420 | 2026-02-10T18:16:21.317 |
| fkie_cve-2025-62389 | SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated atta… | 2025-10-13T22:15:35.257 | 2026-02-10T18:16:21.207 |
| fkie_cve-2025-62388 | SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated atta… | 2025-10-13T22:15:35.080 | 2026-02-10T18:16:21.100 |
| fkie_cve-2025-62387 | SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated atta… | 2025-10-13T22:15:34.910 | 2026-02-10T18:16:20.990 |
| fkie_cve-2025-62386 | SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated atta… | 2025-10-13T22:15:34.740 | 2026-02-10T18:16:20.880 |
| fkie_cve-2025-62385 | SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated atta… | 2025-10-13T22:15:34.580 | 2026-02-10T18:16:20.753 |
| fkie_cve-2025-62384 | SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated atta… | 2025-10-13T22:15:34.420 | 2026-02-10T18:16:20.637 |
| fkie_cve-2025-62383 | SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated atta… | 2025-10-13T22:15:34.257 | 2026-02-10T18:16:20.527 |
| fkie_cve-2025-61550 | Cross-Site Scripting (XSS) is present on the ctl00_Content01_fieldValue parameters on the /psp/appN… | 2026-01-08T17:15:48.940 | 2026-02-10T18:16:20.377 |
| fkie_cve-2025-61549 | Cross-Site Scripting (XSS) is present on the LoginID parameter on the /PSP/app/web/reg/reg_display.… | 2026-01-08T17:15:48.830 | 2026-02-10T18:16:20.230 |
| fkie_cve-2025-61548 | SQL Injection is present on the hfInventoryDistFormID parameter in the /PSP/appNET/Store/CartV12.as… | 2026-01-08T17:15:48.727 | 2026-02-10T18:16:20.083 |
| fkie_cve-2025-61547 | Cross-Site Request Forgery (CSRF) is present on all functions in edu Business Solutions Print Shop … | 2026-01-08T17:15:48.620 | 2026-02-10T18:16:19.923 |
| fkie_cve-2025-61546 | There is an issue on the /PSP/appNET/Store/CartV12.aspx/GetUnitPrice endpoint in edu Business Solut… | 2026-01-08T17:15:48.510 | 2026-02-10T18:16:19.737 |
| fkie_cve-2025-59282 | Concurrent execution using shared resource with improper synchronization ('race condition') in Inbo… | 2025-10-14T17:16:11.110 | 2026-02-10T18:16:18.523 |
| fkie_cve-2025-26466 | A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packe… | 2025-02-28T22:15:40.080 | 2026-02-10T18:16:14.480 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-j7v6-w2gj-qw58 |
4.3 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Angel Costa WP SEO Search wp-seo-search allows C… | 2026-01-22T18:30:33Z | 2026-01-29T03:31:26Z |
| ghsa-fxpv-vhr6-hx33 |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-22T18:30:34Z | 2026-01-29T03:31:26Z |
| ghsa-c62x-8w8r-xxr4 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-22T18:30:33Z | 2026-01-29T03:31:26Z |
| ghsa-94gj-3qj6-w8qv |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in themeton Consult Aid consultaid allows Object In… | 2026-01-22T18:30:33Z | 2026-01-29T03:31:26Z |
| ghsa-7xrh-w975-79f8 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-22T18:30:33Z | 2026-01-29T03:31:26Z |
| ghsa-74pm-9rv5-w35v |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in designthemes Kids Heaven kids-world allows Objec… | 2026-01-22T18:30:33Z | 2026-01-29T03:31:26Z |
| ghsa-5rmr-3wvq-9rp2 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Crumber crumber-elementor allows Exploiting Incorr… | 2026-01-22T18:30:33Z | 2026-01-29T03:31:26Z |
| ghsa-5f49-479f-ffrv |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Audier For Elementor audier-elementor allows Explo… | 2026-01-22T18:30:33Z | 2026-01-29T03:31:26Z |
| ghsa-4rp9-vc2x-cvfr |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-22T18:30:33Z | 2026-01-29T03:31:26Z |
| ghsa-4676-qh4g-4h4x |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-22T18:30:34Z | 2026-01-29T03:31:26Z |
| ghsa-3f5c-485h-v36h |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-22T18:30:33Z | 2026-01-29T03:31:26Z |
| ghsa-cc7j-j6fh-4xhc |
5.4 (3.1)
5.1 (4.0)
|
Stored cross-site scripting (XSS, CWE-79) in the survey content and administration functionality in… | 2026-01-07T15:30:16Z | 2026-01-29T03:31:25Z |
| ghsa-j6jw-hg33-x575 |
9.1 (3.1)
7.6 (4.0)
|
Brocade ASCG before 3.2.0 Web Interface is not enforcing HSTS, as defined by RFC 6797. HSTS is an… | 2025-03-01T00:31:55Z | 2026-01-29T03:31:24Z |
| ghsa-4pvg-877c-6rg9 |
7.8 (3.1)
7.0 (4.0)
|
DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0 allo… | 2025-09-10T12:30:20Z | 2026-01-29T03:31:24Z |
| ghsa-r2rj-wwm5-x6mq |
7.7 (3.1)
|
Kyverno Denial of Service via Context Variable Amplification in Policy Engine | 2026-01-27T18:02:22Z | 2026-01-29T03:31:12Z |
| ghsa-24hm-wm2h-h8w7 |
5.0 (3.1)
|
Peppol-py is vulnerable to XXE attacks due to Saxon configuration | 2025-11-28T06:32:06Z | 2026-01-29T03:30:58Z |
| ghsa-vc8c-j3xm-xj73 |
4.1 (4.0)
|
Wasmtime segfault or unused out-of-sandbox load with f64.copysign operator on x86-64 | 2026-01-27T00:48:20Z | 2026-01-29T03:28:33Z |
| ghsa-jqc5-w2xx-5vq4 |
4.7 (3.1)
|
go-tuf Path Traversal in TAP 4 Multirepo Client Allows Arbitrary File Write via Malicious Repositor… | 2026-01-26T23:49:55Z | 2026-01-29T03:26:24Z |
| ghsa-8hf7-h89p-3pqj |
8.1 (3.1)
|
MobSF has Stored XSS via Manifest Analysis - Dialer Code Host Field | 2026-01-26T23:36:19Z | 2026-01-29T03:25:29Z |
| ghsa-gcgx-chcp-hxp9 |
5.3 (3.1)
|
Gakido vulnerable to HTTP Header Injection (CRLF Injection) | 2026-01-26T23:29:57Z | 2026-01-29T03:25:02Z |
| ghsa-wp53-j4wj-2cfg |
8.6 (3.1)
|
Python-Multipart has Arbitrary File Write via Non-Default Configuration | 2026-01-26T23:28:05Z | 2026-01-29T03:24:52Z |
| ghsa-mxxc-p822-2hx9 |
8.1 (3.1)
|
Skipper Ingress Controller Allows Unauthorized Access to Internal Services via ExternalName | 2026-01-26T23:26:56Z | 2026-01-29T03:24:42Z |
| ghsa-hm8f-75xx-w2vr |
0.0 (3.1)
|
sigstore CSRF possibility in OIDC authentication during signing | 2026-01-26T21:34:50Z | 2026-01-29T03:24:33Z |
| ghsa-rqfh-9r24-8c9r |
8.2 (4.0)
|
AssertJ has XML External Entity (XXE) vulnerability when parsing untrusted XML via isXmlEqualTo assertion | 2026-01-26T21:31:41Z | 2026-01-29T03:24:21Z |
| ghsa-6r62-w2q3-48hf |
7.4 (3.1)
|
BentoML has a Path Traversal via Bentofile Configuration | 2026-01-26T21:17:16Z | 2026-01-29T03:23:35Z |
| ghsa-m733-5w8f-5ggw |
6.5 (3.1)
6.7 (4.0)
|
pnpm has symlink traversal in file:/git dependencies | 2026-01-26T21:02:33Z | 2026-01-29T03:23:22Z |
| ghsa-xpqm-wm3m-f34h |
6.5 (3.1)
|
pnpm scoped bin name Path Traversal allows arbitrary file creation outside node_modules/.bin | 2026-01-26T21:02:39Z | 2026-01-29T03:23:11Z |
| ghsa-6x96-7vc8-cm3p |
6.5 (3.1)
|
pnpm has Windows-specific tarball Path Traversal | 2026-01-26T21:02:44Z | 2026-01-29T03:23:02Z |
| ghsa-99p7-6v5w-7xg8 |
9.8 (3.1)
|
vm2 has a Sandbox Escape | 2026-01-26T18:57:14Z | 2026-01-29T03:22:51Z |
| ghsa-796p-j2gh-9m2q |
9.3 (4.0)
|
dcap-qvl has Missing Verification for QE Identity | 2026-01-26T18:55:13Z | 2026-01-29T03:22:29Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-29593 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.639097Z |
| gsd-2024-29231 | Improper validation of array index vulnerability in UserPrivilege.Enum webapi component i… | 2024-04-02T05:02:57.638667Z |
| gsd-2024-29362 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.638015Z |
| gsd-2024-29137 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-02T05:02:57.637619Z |
| gsd-2024-29531 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.637333Z |
| gsd-2024-29773 | Cross-Site Request Forgery (CSRF) vulnerability in BizSwoop a CPF Concepts, LLC Brand Biz… | 2024-04-02T05:02:57.636911Z |
| gsd-2024-29169 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.636627Z |
| gsd-2024-29457 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.636411Z |
| gsd-2024-29343 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.636128Z |
| gsd-2024-29023 | Xibo is an Open Source Digital Signage platform with a web content management system and … | 2024-04-02T05:02:57.635833Z |
| gsd-2024-29143 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-02T05:02:57.635444Z |
| gsd-2024-29141 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-02T05:02:57.634939Z |
| gsd-2024-29655 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.634395Z |
| gsd-2024-29243 | Shenzhen Libituo Technology Co., Ltd LBT-T300-mini v1.2.9 was discovered to contain a buf… | 2024-04-02T05:02:57.634091Z |
| gsd-2024-29054 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | 2024-04-02T05:02:57.633602Z |
| gsd-2024-29328 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.633414Z |
| gsd-2024-29225 | WRC-X3200GST3-B v1.25 and earlier, and WRC-G01-W v1.24 and earlier allow a network-adjace… | 2024-04-02T05:02:57.633213Z |
| gsd-2024-29168 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.632958Z |
| gsd-2024-29714 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.632766Z |
| gsd-2024-29562 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.632525Z |
| gsd-2024-29530 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.632336Z |
| gsd-2024-29514 | File Upload vulnerability in lepton v.7.1.0 allows a remote authenticated attackers to ex… | 2024-04-02T05:02:57.632134Z |
| gsd-2024-29612 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.631880Z |
| gsd-2024-29284 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.631686Z |
| gsd-2024-29482 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.631491Z |
| gsd-2024-29474 | OneBlog v2.3.4 was discovered to contain a stored cross-site scripting (XSS) vulnerabilit… | 2024-04-02T05:02:57.631187Z |
| gsd-2024-29393 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.630883Z |
| gsd-2024-29677 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.630672Z |
| gsd-2024-29615 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.630447Z |
| gsd-2024-29555 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.630218Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-189968 | Malicious code in transform-robotics-filament-orbit (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189967 | Malicious code in transform-pegasus-await-volcanology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189966 | Malicious code in transform-galaxy-writable-slides (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189965 | Malicious code in transform-forever-quantum-computing-archaeoastronomy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189964 | Malicious code in transform-ethology-weywot-style-loader (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189963 | Malicious code in transform-command-cors-parcel (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189962 | Malicious code in transform-carpo-charon-hapi (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189961 | Malicious code in transform-blitz-element-ui-helios (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189960 | Malicious code in tool-webdriver-mocha-prettier-axios (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189959 | Malicious code in tool-wavefunction-ultra-gridsome (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189958 | Malicious code in tool-tailwindcss-cosmology-native (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189957 | Malicious code in tool-pino-xenos-rollup (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189956 | Malicious code in tool-nightmare-cryovolcano-cryptography (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189955 | Malicious code in tool-dotenv-parse-variables-gravitationalwave-luna (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189954 | Malicious code in tool-dependencies-dotenv-library (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189953 | Malicious code in tool-callisto-betelgeuse-axios (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189952 | Malicious code in toml-terser-webpack-plugin-process-prompts (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189951 | Malicious code in toml-superflare-rollup-algol (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189950 | Malicious code in toml-slidev-nebula-antares (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189949 | Malicious code in toml-protractor-spinner-inflation (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189948 | Malicious code in toml-jwt-docusaurus-celeste (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189947 | Malicious code in toml-json-express-event (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189946 | Malicious code in toml-ethology-cordelia-carpo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189945 | Malicious code in toml-csrf-quark-geodynamo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189944 | Malicious code in toml-apollo-materialize-hexo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189943 | Malicious code in toml-airbnb-cosmicsilence-bionics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189942 | Malicious code in titan-soap-request-framework (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189941 | Malicious code in titan-luna-luna-prompts (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189940 | Malicious code in titan-link-wolf-unuk (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189939 | Malicious code in titan-iota-carina-vuepress (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-1948 | Progress Software WS_FTP: Mehrere Schwachstellen | 2024-08-28T22:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2024-1941 | Cisco Application Policy Infrastructure Controller: Mehrere Schwachstellen | 2024-08-28T22:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2024-1909 | ImageMagick: Schwachstellen ermöglicen Offenlegung von Informationen | 2018-10-03T22:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2024-1877 | Moodle: Mehrere Schwachstellen | 2024-08-18T22:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2024-1181 | Python: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2018-09-18T22:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2024-0215 | OpenSSL: Mehrere Schwachstellen | 2016-05-03T22:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2024-0214 | OpenSSL: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2016-06-09T22:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2024-0154 | Linux Kernel: Schwachstelle ermöglicht Erlangen von Administratorrechten | 2015-03-11T23:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2023-2154 | ImageMagick: Schwachstelle ermöglicht Denial of Service | 2018-04-16T22:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2023-0204 | Red Hat OpenShift: Mehrere Schwachstellen | 2023-01-25T23:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2022-0023 | Red Hat OpenShift: Mehrere Schwachstellen | 2022-06-01T22:00:00.000+00:00 | 2024-08-28T22:00:00.000+00:00 |
| wid-sec-w-2024-1937 | Checkmk: Schwachstelle ermöglicht Cross-Site Scripting | 2024-08-27T22:00:00.000+00:00 | 2024-08-27T22:00:00.000+00:00 |
| wid-sec-w-2024-1936 | IBM Security Verify Access: Schwachstelle ermöglicht Manipulation von Daten | 2024-08-27T22:00:00.000+00:00 | 2024-08-27T22:00:00.000+00:00 |
| wid-sec-w-2024-1935 | TeamViewer: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-08-27T22:00:00.000+00:00 | 2024-08-27T22:00:00.000+00:00 |
| wid-sec-w-2024-1933 | Dell BIOS: Schwachstelle ermöglicht Codeausführung und Umgehung von Sicherheitsmaßnahmen | 2024-08-27T22:00:00.000+00:00 | 2024-08-27T22:00:00.000+00:00 |
| wid-sec-w-2024-1753 | Apache OFBiz: Schwachstelle ermöglicht Codeausführung | 2024-08-04T22:00:00.000+00:00 | 2024-08-27T22:00:00.000+00:00 |
| wid-sec-w-2024-1460 | VMware ESXi, VMware Cloud Foundation and VMware vCenter Server: Mehrere Schwachstellen | 2024-06-25T22:00:00.000+00:00 | 2024-08-27T22:00:00.000+00:00 |
| wid-sec-w-2024-1931 | TYPO3 Powermail Extension: Mehrere Schwachstellen ermöglichen Manipulation von Dateien und die Offenlegung von Informationen | 2024-08-26T22:00:00.000+00:00 | 2024-08-26T22:00:00.000+00:00 |
| wid-sec-w-2024-1930 | Hitachi Ops Center: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-08-26T22:00:00.000+00:00 | 2024-08-26T22:00:00.000+00:00 |
| wid-sec-w-2024-1928 | Checkmk: Schwachstelle ermöglicht Cross-Site Scripting | 2024-08-26T22:00:00.000+00:00 | 2024-08-26T22:00:00.000+00:00 |
| wid-sec-w-2024-1835 | Microsoft Windows: Mehrere Schwachstellen | 2024-08-13T22:00:00.000+00:00 | 2024-08-26T22:00:00.000+00:00 |
| wid-sec-w-2024-1924 | OTRS: Mehrere Schwachstellen | 2024-08-25T22:00:00.000+00:00 | 2024-08-25T22:00:00.000+00:00 |
| wid-sec-w-2024-1921 | IBM Storage Scale: Schwachstelle ermöglicht Cross-Site Scripting | 2024-08-25T22:00:00.000+00:00 | 2024-08-25T22:00:00.000+00:00 |
| wid-sec-w-2024-1733 | Google Chrome / Microsoft Edge: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-07-30T22:00:00.000+00:00 | 2024-08-25T22:00:00.000+00:00 |
| wid-sec-w-2024-1633 | Google Chrome und Microsoft Edge: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-07-16T22:00:00.000+00:00 | 2024-08-25T22:00:00.000+00:00 |
| wid-sec-w-2024-1262 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-05-30T22:00:00.000+00:00 | 2024-08-25T22:00:00.000+00:00 |
| wid-sec-w-2024-0616 | Adobe Experience Manager: Mehrere Schwachstellen | 2024-03-12T23:00:00.000+00:00 | 2024-08-25T22:00:00.000+00:00 |
| wid-sec-w-2022-1525 | fetchmail: Schwachstelle ermöglicht Denial of Service | 2021-07-28T22:00:00.000+00:00 | 2024-08-25T22:00:00.000+00:00 |
| wid-sec-w-2024-1918 | IBM App Connect Enterprise: Schwachstelle ermöglicht Privilegieneskalation | 2024-08-22T22:00:00.000+00:00 | 2024-08-22T22:00:00.000+00:00 |
| wid-sec-w-2024-1917 | Microsoft Edge: Mehrere Schwachstellen | 2024-08-22T22:00:00.000+00:00 | 2024-08-22T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:8125 | Red Hat Security Advisory: OpenJDK 17.0.13 Security Update for Portable Linux Builds | 2024-10-16T15:12:03+00:00 | 2026-01-26T21:08:09+00:00 |
| rhsa-2024:8117 | Red Hat Security Advisory: java-1.8.0-openjdk security update | 2024-10-16T19:06:41+00:00 | 2026-01-26T21:08:09+00:00 |
| rhsa-2024:8122 | Red Hat Security Advisory: OpenJDK 11.0.25 Security Update for Portable Linux Builds | 2024-10-16T15:02:11+00:00 | 2026-01-26T21:08:07+00:00 |
| rhsa-2024:8119 | Red Hat Security Advisory: OpenJDK 8u432 Windows Security Update | 2024-10-16T15:02:56+00:00 | 2026-01-26T21:08:07+00:00 |
| rhsa-2024:8120 | Red Hat Security Advisory: java-11-openjdk security update | 2024-10-16T11:16:39+00:00 | 2026-01-26T21:08:06+00:00 |
| rhsa-2024:8116 | Red Hat Security Advisory: java-1.8.0-openjdk security update | 2024-10-17T14:19:10+00:00 | 2026-01-26T21:08:05+00:00 |
| rhsa-2024:8118 | Red Hat Security Advisory: OpenJDK 8u432 Security Update for Portable Linux Builds | 2024-10-16T15:01:45+00:00 | 2026-01-26T21:08:04+00:00 |
| rhsa-2024:8121 | Red Hat Security Advisory: java-11-openjdk security update | 2024-10-16T12:25:44+00:00 | 2026-01-26T21:08:03+00:00 |
| rhsa-2024:4522 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update | 2024-07-12T01:43:40+00:00 | 2026-01-26T21:02:10+00:00 |
| rhsa-2024:1333 | Red Hat Security Advisory: Release of OpenShift Serverless 1.32.0 | 2024-03-14T15:06:09+00:00 | 2026-01-26T21:02:04+00:00 |
| rhsa-2026:0950 | Red Hat Security Advisory: OpenShift Virtualization 4.19.17 Images | 2026-01-22T02:56:54+00:00 | 2026-01-26T19:36:47+00:00 |
| rhsa-2026:1091 | Red Hat Security Advisory: poppler security update | 2026-01-26T12:36:38+00:00 | 2026-01-26T15:44:00+00:00 |
| rhsa-2026:1090 | Red Hat Security Advisory: poppler security update | 2026-01-26T12:42:08+00:00 | 2026-01-26T15:41:26+00:00 |
| rhsa-2026:0772 | Red Hat Security Advisory: poppler security update | 2026-01-19T07:53:49+00:00 | 2026-01-26T15:39:32+00:00 |
| rhsa-2026:0774 | Red Hat Security Advisory: poppler security update | 2026-01-19T07:46:21+00:00 | 2026-01-26T15:39:29+00:00 |
| rhsa-2026:0773 | Red Hat Security Advisory: poppler security update | 2026-01-19T07:53:29+00:00 | 2026-01-26T15:39:27+00:00 |
| rhsa-2026:0128 | Red Hat Security Advisory: poppler security update | 2026-01-06T11:36:21+00:00 | 2026-01-26T15:39:23+00:00 |
| rhsa-2026:0130 | Red Hat Security Advisory: poppler security update | 2026-01-06T13:10:58+00:00 | 2026-01-26T15:39:21+00:00 |
| rhsa-2026:0796 | Red Hat Security Advisory: poppler security update | 2026-01-19T11:32:16+00:00 | 2026-01-26T15:39:11+00:00 |
| rhsa-2026:0126 | Red Hat Security Advisory: poppler security update | 2026-01-06T11:57:21+00:00 | 2026-01-26T15:39:11+00:00 |
| rhsa-2026:0797 | Red Hat Security Advisory: poppler security update | 2026-01-19T12:25:00+00:00 | 2026-01-26T15:39:08+00:00 |
| rhsa-2026:0799 | Red Hat Security Advisory: poppler security update | 2026-01-19T12:14:30+00:00 | 2026-01-26T15:39:07+00:00 |
| rhsa-2026:0795 | Red Hat Security Advisory: poppler security update | 2026-01-19T11:25:00+00:00 | 2026-01-26T15:39:03+00:00 |
| rhsa-2024:9976 | Red Hat Security Advisory: RHOSP 17.1.4 (python-werkzeug) security update | 2024-11-21T09:29:24+00:00 | 2026-01-26T15:38:07+00:00 |
| rhsa-2024:9975 | Red Hat Security Advisory: RHOSP 17.1.4 (python-werkzeug) security update | 2024-11-21T09:28:14+00:00 | 2026-01-26T15:38:06+00:00 |
| rhsa-2024:6016 | Red Hat Security Advisory: OpenShift Container Platform 4.15.30 packages and security update | 2024-09-05T06:33:09+00:00 | 2026-01-26T15:38:04+00:00 |
| rhsa-2024:10696 | Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (python-werkzeug) security update | 2024-12-02T15:56:03+00:00 | 2026-01-26T15:38:02+00:00 |
| rhsa-2024:6499 | Red Hat Security Advisory: Red Hat Single Sign-On 7.6.10 security update | 2024-09-09T15:58:16+00:00 | 2026-01-26T15:36:26+00:00 |
| rhsa-2024:6497 | Red Hat Security Advisory: Red Hat Single Sign-On 7.6.10 for OpenShift image enhancement update | 2024-09-09T16:12:20+00:00 | 2026-01-26T15:36:26+00:00 |
| rhsa-2024:6493 | Red Hat Security Advisory: Red Hat Single Sign-On 7.6.10 security update on RHEL 7 | 2024-09-09T16:00:59+00:00 | 2026-01-26T15:36:26+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-53787 | Microsoft 365 Copilot BizChat Information Disclosure Vulnerability | 2025-08-12T07:00:00.000Z | 2025-08-07T07:00:00.000Z |
| msrc_cve-2025-53774 | Microsoft 365 Copilot BizChat Information Disclosure Vulnerability | 2025-08-12T07:00:00.000Z | 2025-08-07T07:00:00.000Z |
| msrc_cve-2025-53767 | Azure OpenAI Elevation of Privilege Vulnerability | 2025-08-12T07:00:00.000Z | 2025-08-07T07:00:00.000Z |
| msrc_cve-2025-49133 | Libtpms contains a possible out-of-bound access and abort due to HMAC signing issue | 2025-06-02T00:00:00.000Z | 2025-08-07T00:00:00.000Z |
| msrc_cve-2024-4855 | Use After Free in editcap | 2024-05-02T07:00:00.000Z | 2025-08-07T00:00:00.000Z |
| msrc_cve-2024-2955 | Mismatched Memory Management Routines in Wireshark | 2024-03-02T08:00:00.000Z | 2025-08-07T00:00:00.000Z |
| msrc_cve-2022-4603 | ppp pppdump pppdump.c dumpppp array index | 2022-12-02T00:00:00.000Z | 2025-08-07T00:00:00.000Z |
| msrc_cve-2025-53770 | Microsoft SharePoint Server Remote Code Execution Vulnerability | 2025-07-08T07:00:00.000Z | 2025-08-06T07:00:00.000Z |
| msrc_cve-2025-7545 | GNU Binutils objcopy.c copy_section heap-based overflow | 2025-07-02T00:00:00.000Z | 2025-08-06T00:00:00.000Z |
| msrc_cve-2025-6140 | spdlog pattern_formatter-inl.h scoped_padder resource consumption | 2025-06-02T00:00:00.000Z | 2025-08-06T00:00:00.000Z |
| msrc_cve-2025-48938 | Prevent GitHub CLI and extensions from executing arbitrary commands from compromised GitHub Enterprise Server | 2025-05-02T00:00:00.000Z | 2025-08-06T00:00:00.000Z |
| msrc_cve-2024-7730 | Qemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb() | 2024-11-02T00:00:00.000Z | 2025-08-05T00:00:00.000Z |
| msrc_cve-2024-4853 | Mismatched Memory Management Routines in editcap | 2024-05-02T07:00:00.000Z | 2025-08-05T00:00:00.000Z |
| msrc_cve-2025-49719 | Microsoft SQL Server Information Disclosure Vulnerability | 2025-07-08T07:00:00.000Z | 2025-08-03T07:00:00.000Z |
| msrc_cve-2025-1550 | Arbitrary Code Execution via Crafted Keras Config for Model Loading | 2025-03-02T00:00:00.000Z | 2025-08-01T00:00:00.000Z |
| msrc_cve-2025-53771 | Microsoft SharePoint Server Spoofing Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-31T07:00:00.000Z |
| msrc_cve-2025-49706 | Microsoft SharePoint Server Spoofing Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-31T07:00:00.000Z |
| msrc_cve-2025-49733 | Win32k Elevation of Privilege Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-23T07:00:00.000Z |
| msrc_cve-2025-29819 | Windows Admin Center in Azure Portal Information Disclosure Vulnerability | 2025-04-08T07:00:00.000Z | 2025-07-22T07:00:00.000Z |
| msrc_cve-2022-44693 | Microsoft SharePoint Server Remote Code Execution Vulnerability | 2022-12-13T08:00:00.000Z | 2025-07-22T07:00:00.000Z |
| msrc_cve-2025-53762 | Microsoft Purview Elevation of Privilege Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-18T07:00:00.000Z |
| msrc_cve-2025-49747 | Azure Machine Learning Elevation of Privilege Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-18T07:00:00.000Z |
| msrc_cve-2025-49746 | Azure Machine Learning Elevation of Privilege Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-18T07:00:00.000Z |
| msrc_cve-2025-47995 | Azure Machine Learning Elevation of Privilege Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-18T07:00:00.000Z |
| msrc_cve-2025-47158 | Azure DevOps Server Elevation of Privilege Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-18T07:00:00.000Z |
| msrc_cve-2025-49735 | Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-17T07:00:00.000Z |
| msrc_cve-2025-49711 | Microsoft Excel Remote Code Execution Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-15T07:00:00.000Z |
| msrc_cve-2025-49705 | Microsoft PowerPoint Remote Code Execution Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-15T07:00:00.000Z |
| msrc_cve-2025-49703 | Microsoft Word Remote Code Execution Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-15T07:00:00.000Z |
| msrc_cve-2025-49702 | Microsoft Office Remote Code Execution Vulnerability | 2025-07-08T07:00:00.000Z | 2025-07-15T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202411-1758 | Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in th… | 2025-05-09T03:05:07.715000Z |
| var-202210-2041 | Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow vulnerability in the GetP… | 2025-05-09T03:02:52.490000Z |
| var-202411-2043 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were… | 2025-05-09T03:02:44.331000Z |
| var-202501-2157 | An access control issue in the component formDMZ.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D… | 2025-05-09T03:02:44.018000Z |
| var-202501-2556 | An access control issue in the component form2WlAc.cgi of D-Link 816A2_FWv1.10CNB05_R1B01… | 2025-05-09T03:02:43.985000Z |
| var-202411-0422 | Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the pptp_user_ne… | 2025-05-09T02:59:14.262000Z |
| var-202411-0626 | Netgear R8500 v1.0.2.160 was discovered to contain a stack overflow via the ipv6_pri_dns … | 2025-05-09T02:56:34.708000Z |
| var-202501-0004 | A vulnerability, which was classified as critical, was found in D-Link DIR-816 A2 1.10CNB… | 2025-05-09T02:56:34.350000Z |
| var-202411-0986 | Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow via the ssid parameter… | 2025-05-09T02:52:10.433000Z |
| var-202411-1028 | Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in t… | 2025-05-09T02:52:10.411000Z |
| var-201808-0967 | A vulnerability in lack of validation of user-supplied parameters pass to XML-RPC calls o… | 2025-05-07T23:25:29.503000Z |
| var-202003-0307 | A stack-based buffer overflow in /cgi-bin/activate.cgi through ticket parameter on Drayte… | 2025-05-07T23:25:28.173000Z |
| var-202210-1979 | D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the wizardstep5… | 2025-05-07T23:25:25.488000Z |
| var-202210-2011 | D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the srcip param… | 2025-05-07T23:23:53.333000Z |
| var-202210-2137 | D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary c… | 2025-05-07T23:23:53.264000Z |
| var-201709-0600 | The DHCP client on D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) a… | 2025-05-07T23:23:37.344000Z |
| var-202003-0308 | A stack-based buffer overflow in /cgi-bin/activate.cgi while base64 decoding ticket param… | 2025-05-07T23:23:35.219000Z |
| var-202003-0306 | A stack-based buffer overflow in /cgi-bin/activate.cgi through var parameter on Draytek V… | 2025-05-07T23:22:11.177000Z |
| var-202210-2112 | Nginx NJS v0.7.2 was discovered to contain a heap-use-after-free bug caused by illegal me… | 2025-05-07T23:22:08.388000Z |
| var-202211-0046 | A logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11… | 2025-05-07T23:21:14.548000Z |
| var-202304-0813 | Command injection vulnerability found in Tenda G103 v.1.0.0.5 allows attacker to execute … | 2025-05-07T23:21:13.818000Z |
| var-202003-0310 | A stack-based buffer overflow in apmd on Draytek Vigor3900, Vigor2960, and Vigor300B devi… | 2025-05-07T23:20:29.626000Z |
| var-202210-1903 | D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the wizardstep4… | 2025-05-07T23:19:56.812000Z |
| var-201708-1418 | An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was disc… | 2025-05-07T23:18:08.668000Z |
| var-201812-0070 | The remote upgrade feature in Guardzilla GZ180 devices allow command injection via a craf… | 2025-05-07T23:17:42.428000Z |
| var-202210-1999 | Nginx NJS v0.7.4 was discovered to contain a segmentation violation in njs_promise_reacti… | 2025-05-07T23:17:34.653000Z |
| var-202210-2043 | D-Link DIR-816 A2 1.10 B05 was discovered to contain multiple command injection vulnerabi… | 2025-05-07T23:17:34.632000Z |
| var-202003-0309 | /cgi-bin/activate.cgi on Draytek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1… | 2025-05-07T23:16:10.308000Z |
| var-202210-1534 | Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching erro… | 2025-05-07T23:16:06.834000Z |
| var-202210-1952 | D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the pskValue pa… | 2025-05-07T23:15:12.227000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2024:0313-1 | Security update for slurm_18_08 | 2024-02-02T05:03:48Z | 2024-02-02T05:03:48Z |
| suse-su-2024:0312-1 | Security update for slurm_23_02 | 2024-02-02T05:03:43Z | 2024-02-02T05:03:43Z |
| suse-su-2024:0311-1 | Security update for slurm_22_05 | 2024-02-02T05:03:38Z | 2024-02-02T05:03:38Z |
| suse-su-2024:0310-1 | Security update for slurm_20_02 | 2024-02-02T05:03:33Z | 2024-02-02T05:03:33Z |
| suse-su-2024:0309-1 | Security update for slurm_20_11 | 2024-02-02T05:03:27Z | 2024-02-02T05:03:27Z |
| suse-su-2024:0307-1 | Security update for gstreamer | 2024-02-01T19:28:24Z | 2024-02-01T19:28:24Z |
| suse-su-2024:0301-1 | Security update for webkit2gtk3 | 2024-02-01T12:35:14Z | 2024-02-01T12:35:14Z |
| suse-su-2024:0300-1 | Security update for xerces-c | 2024-02-01T12:34:32Z | 2024-02-01T12:34:32Z |
| suse-su-2024:0299-1 | Security update for xerces-c | 2024-02-01T12:34:00Z | 2024-02-01T12:34:00Z |
| suse-su-2024:0298-1 | Security update for squid | 2024-02-01T12:33:45Z | 2024-02-01T12:33:45Z |
| suse-su-2024:0296-1 | Security update for squid | 2024-02-01T10:33:25Z | 2024-02-01T10:33:25Z |
| suse-su-2024:0295-1 | Security update for runc | 2024-02-01T07:23:29Z | 2024-02-01T07:23:29Z |
| suse-su-2024:0294-1 | Security update for runc | 2024-02-01T07:21:08Z | 2024-02-01T07:21:08Z |
| suse-su-2024:0292-1 | Security update for rear1172a | 2024-01-31T14:08:25Z | 2024-01-31T14:08:25Z |
| suse-su-2024:0291-1 | Security update for rear116 | 2024-01-31T14:08:20Z | 2024-01-31T14:08:20Z |
| suse-su-2024:0290-1 | Security update for python-Pillow | 2024-01-31T11:19:22Z | 2024-01-31T11:19:22Z |
| suse-su-2024:0289-1 | Security update for slurm_23_02 | 2024-01-31T11:03:53Z | 2024-01-31T11:03:53Z |
| suse-su-2024:0288-1 | Security update for slurm_20_11 | 2024-01-31T11:03:44Z | 2024-01-31T11:03:44Z |
| suse-su-2024:0287-1 | Security update for slurm | 2024-01-31T11:03:38Z | 2024-01-31T11:03:38Z |
| suse-su-2024:0286-1 | Security update for slurm_22_05 | 2024-01-31T11:03:28Z | 2024-01-31T11:03:28Z |
| suse-su-2024:0284-1 | Security update for slurm | 2024-01-31T10:03:48Z | 2024-01-31T10:03:48Z |
| suse-su-2024:0283-1 | Security update for slurm_22_05 | 2024-01-31T10:03:32Z | 2024-01-31T10:03:32Z |
| suse-su-2024:0280-1 | Security update for slurm_23_02 | 2024-01-31T07:33:39Z | 2024-01-31T07:33:39Z |
| suse-su-2024:0279-1 | Security update for slurm | 2024-01-31T07:33:29Z | 2024-01-31T07:33:29Z |
| suse-su-2024:0278-1 | Security update for slurm_20_02 | 2024-01-31T06:15:30Z | 2024-01-31T06:15:30Z |
| suse-su-2024:0270-1 | Security update for xen | 2024-01-30T13:20:08Z | 2024-01-30T13:20:08Z |
| suse-su-2024:0269-1 | Security update for xen | 2024-01-30T13:19:59Z | 2024-01-30T13:19:59Z |
| suse-su-2024:0268-1 | Security update for xen | 2024-01-30T13:19:45Z | 2024-01-30T13:19:45Z |
| suse-su-2024:0266-1 | Security update for xen | 2024-01-30T13:19:20Z | 2024-01-30T13:19:20Z |
| suse-su-2024:0265-1 | Security update for xen | 2024-01-30T13:19:13Z | 2024-01-30T13:19:13Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:10456-1 | libQt5Bootstrap-devel-static-32bit-5.7.0-2.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10455-1 | irssi-0.8.20-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10454-1 | libid3tag-devel-0.15.1b-185.6 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10453-1 | gdk-pixbuf-devel-2.36.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10452-1 | perl-Email-Address-1.908-1.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10451-1 | libfreebl3-3.26.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10450-1 | python-2.7.12-1.5 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10449-1 | perl-32bit-5.24.0-3.5 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10448-1 | tkdiff-4.2-10.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10447-1 | libpcre2-16-0-10.22-1.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10446-1 | tomcat-8.0.36-3.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10445-1 | zoo-2.10-1025.8 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10444-1 | dia-0.97.3-4.13 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10443-1 | jython-2.2.1-16.10 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10442-1 | libXfixes-devel-32bit-5.0.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10441-1 | gnome-settings-daemon-3.22.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10440-1 | timidity-2.14.0-3.10 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10439-1 | castor-0.9.5-326.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10438-1 | freetype2-devel-2.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10437-1 | tomboy-1.15.5-1.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10436-1 | libpolkit0-0.113-3.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10435-1 | nano-2.7.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10434-1 | libminiupnpc-devel-2.0-1.5 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10433-1 | libv8-5-5.3.171-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10432-1 | finch-2.11.0-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10431-1 | xorg-x11-7.6_1-16.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10430-1 | conntrack-tools-1.4.4-1.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10429-1 | gstreamer-0_10-plugins-bad-0.10.23-22.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10428-1 | claws-mail-3.14.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10427-1 | libipa_hbac-devel-1.14.2-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-18081 | Oracle MySQL Server存在未明漏洞(CNVD-2025-18081) | 2024-10-23 | 2025-08-11 |
| cnvd-2025-18080 | Oracle MySQL Server存在未明漏洞(CNVD-2025-18080) | 2024-10-23 | 2025-08-11 |
| cnvd-2025-18079 | Oracle MySQL Cluster存在未明漏洞(CNVD-2025-18079) | 2024-10-23 | 2025-08-11 |
| cnvd-2025-18078 | Oracle MySQL Server存在未明漏洞(CNVD-2025-18078) | 2024-10-23 | 2025-08-11 |
| cnvd-2025-18077 | Oracle MySQL Server存在未明漏洞(CNVD-2025-18077) | 2024-10-23 | 2025-08-11 |
| cnvd-2025-18076 | Oracle MySQL存在未明漏洞(CNVD-2025-18076) | 2024-10-23 | 2025-08-11 |
| cnvd-2025-18065 | Oracle MySQL存在未明漏洞(CNVD-2025-18065) | 2024-10-23 | 2025-08-11 |
| cnvd-2025-18064 | Oracle MySQL存在未明漏洞(CNVD-2025-18064) | 2024-10-23 | 2025-08-11 |
| cnvd-2025-18008 | 深圳市鼎信通达科技有限公司甘肃省危险品库监控平台SQL注入漏洞 | 2025-08-11 | 2025-08-11 |
| cnvd-2025-18039 | H3C BR3000W存在信息泄露漏洞 | 2025-06-26 | 2025-08-10 |
| cnvd-2025-18001 | 摩莎科技(上海)有限公司ioLogik E1210-T存在未授权访问漏洞 | 2025-06-25 | 2025-08-09 |
| cnvd-2025-17961 | 用友网络科技股份有限公司用友U8Cloud存在SQL注入漏洞(CNVD-2025-17961) | 2025-06-25 | 2025-08-09 |
| cnvd-2025-17950 | 深圳市明源云科技有限公司ERP系统存在SQL注入漏洞 | 2025-06-25 | 2025-08-09 |
| cnvd-2025-18194 | Cisco Unified Intelligence Center任意文件上传漏洞 | 2025-07-21 | 2025-08-08 |
| cnvd-2025-17968 | TOTOLINK LR1200GB setOpModeCfg函数缓冲区溢出漏洞 | 2024-01-24 | 2025-08-08 |
| cnvd-2025-17967 | TOTOLINK LR1200GB setLanguageCfg函数缓冲区溢出漏洞 | 2024-01-24 | 2025-08-08 |
| cnvd-2025-17966 | TOTOLINK LR1200GB setIpPortFilterRules函数缓冲区溢出漏洞 | 2024-01-24 | 2025-08-08 |
| cnvd-2025-17965 | TOTOLINK LR1200GB setDiagnosisCfg函数缓冲区溢出漏洞 | 2024-01-24 | 2025-08-08 |
| cnvd-2025-17964 | TOTOLINK EX200拒绝服务漏洞 | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17963 | TOTOLINK EX200存在未明漏洞(CNVD-2025-17963) | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17946 | TOTOLINK EX200存在未明漏洞(CNVD-2025-17946) | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17945 | TOTOLINK EX200 setWebWlanIdx方法代码执行漏洞 | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17944 | TOTOLINK EX200 setUpgradeFW方法代码执行漏洞 | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17943 | TOTOLINK EX200 存在未明漏洞 | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17942 | TOTOLINK EX200 setLanguageCfg方法代码执行漏洞 | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17941 | TOTOLINK EX200 NTPSyncWithHost方法代码执行漏洞 | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17940 | TOTOLINK EX200 getWiFiExtenderConfig方法信息泄露漏洞 | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17939 | TOTOLINK EX200 getSysStatusCfg方法信息泄露漏洞 | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17938 | TOTOLINK EX200 ExportSettings.sh文件存在未明漏洞 | 2024-04-10 | 2025-08-08 |
| cnvd-2025-17937 | WordPress Medical Prescription Attachment Plugin for WooCommerce代码问题漏洞 | 2025-07-23 | 2025-08-08 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2020-avi-588 | Multiples vulnérabilités dans les produits Fortinet | 2020-09-22T00:00:00.000000 | 2020-09-22T00:00:00.000000 |
| certfr-2020-avi-587 | Vulnérabilité dans IBM Qradar | 2020-09-22T00:00:00.000000 | 2020-09-22T00:00:00.000000 |
| certfr-2020-avi-586 | Multiples vulnérabilités dans Google Chrome | 2020-09-22T00:00:00.000000 | 2020-09-22T00:00:00.000000 |
| certfr-2020-avi-585 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2020-09-22T00:00:00.000000 | 2020-09-22T00:00:00.000000 |
| certfr-2020-avi-584 | Multiples vulnérabilités dans Moodle | 2020-09-21T00:00:00.000000 | 2020-09-21T00:00:00.000000 |
| certfr-2020-avi-583 | Vulnérabilité dans IBM WebSphere Application Server | 2020-09-21T00:00:00.000000 | 2020-09-21T00:00:00.000000 |
| certfr-2020-avi-582 | Vulnérabilité dans les produits Fortinet | 2020-09-21T00:00:00.000000 | 2020-09-21T00:00:00.000000 |
| certfr-2020-avi-581 | Multiples vulnérabilités dans les produits Citrix | 2020-09-21T00:00:00.000000 | 2020-09-21T00:00:00.000000 |
| certfr-2020-avi-580 | Multiples vulnérabilités dans les routeurs de série RV340 de Cisco | 2020-09-21T00:00:00.000000 | 2020-09-21T00:00:00.000000 |
| certfr-2020-avi-579 | Vulnérabilité dans Samba | 2020-09-17T00:00:00.000000 | 2020-09-18T00:00:00.000000 |
| certfr-2020-avi-578 | Multiples vulnérabilités dans les produits F5 | 2020-09-17T00:00:00.000000 | 2020-09-17T00:00:00.000000 |
| certfr-2020-avi-577 | Multiples vulnérabilités dans Drupal core | 2020-09-17T00:00:00.000000 | 2020-09-17T00:00:00.000000 |
| certfr-2020-avi-576 | Multiples vulnérabilités dans Fortinet FortiOS SSLVPN Portal | 2020-09-16T00:00:00.000000 | 2020-09-16T00:00:00.000000 |
| certfr-2020-avi-575 | Multiples vulnérabilités dans les produits Aruba | 2020-09-16T00:00:00.000000 | 2020-09-16T00:00:00.000000 |
| certfr-2020-avi-574 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-09-16T00:00:00.000000 | 2020-09-16T00:00:00.000000 |
| certfr-2020-avi-573 | Multiples vulnérabilités dans les produits VMware | 2020-09-15T00:00:00.000000 | 2020-09-15T00:00:00.000000 |
| certfr-2020-avi-572 | Multiples vulnérabilités dans IBM Spectrum Protect Plus | 2020-09-15T00:00:00.000000 | 2020-09-15T00:00:00.000000 |
| certfr-2020-avi-571 | Vulnérabilité dans F5 BIG-IP et BIG-IQ | 2020-09-15T00:00:00.000000 | 2020-09-15T00:00:00.000000 |
| certfr-2020-avi-570 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-09-14T00:00:00.000000 | 2020-09-14T00:00:00.000000 |
| certfr-2020-avi-569 | Multiples vulnérabilités dans Google Chrome OS | 2020-09-14T00:00:00.000000 | 2020-09-14T00:00:00.000000 |
| certfr-2020-avi-568 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-09-11T00:00:00.000000 | 2020-09-11T00:00:00.000000 |
| certfr-2020-avi-567 | Vulnérabilité dans Ruby on Rails | 2020-09-10T00:00:00.000000 | 2020-09-10T00:00:00.000000 |
| certfr-2020-avi-566 | Multiples vulnérabilités dans Palo Alto Networks PAN-OS | 2020-09-10T00:00:00.000000 | 2020-09-10T00:00:00.000000 |
| certfr-2020-avi-565 | Vulnérabilité dans OpenSSL | 2020-09-10T00:00:00.000000 | 2020-09-10T00:00:00.000000 |
| certfr-2020-avi-564 | Multiples vulnérabilités dans les produits Microsoft | 2020-09-09T00:00:00.000000 | 2020-09-09T00:00:00.000000 |
| certfr-2020-avi-563 | Vulnérabilité dans Microsoft .Net | 2020-09-09T00:00:00.000000 | 2020-09-09T00:00:00.000000 |
| certfr-2020-avi-562 | Multiples vulnérabilités dans Microsoft Windows | 2020-09-09T00:00:00.000000 | 2020-09-09T00:00:00.000000 |
| certfr-2020-avi-561 | Multiples vulnérabilités dans Microsoft Office | 2020-09-09T00:00:00.000000 | 2020-09-09T00:00:00.000000 |
| certfr-2020-avi-560 | Multiples vulnérabilités dans Microsoft Edge | 2020-09-09T00:00:00.000000 | 2020-09-09T00:00:00.000000 |
| certfr-2020-avi-559 | Multiples vulnérabilités dans Microsoft IE | 2020-09-09T00:00:00.000000 | 2020-09-09T00:00:00.000000 |